[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sat Apr 2 10:13:55 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ebaf9417 by Salvatore Bonaccorso at 2022-04-02T11:03:42+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -587,7 +587,7 @@ CVE-2022-28162
 CVE-2022-28161
 	RESERVED
 CVE-2022-1159 (Rockwell Automation Studio 5000 Logix Designer (all versions) are vuln ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2022-1158
 	RESERVED
 CVE-2022-1157
@@ -1351,7 +1351,7 @@ CVE-2022-1100
 CVE-2022-1099
 	RESERVED
 CVE-2022-1098 (Delta Electronics DIAEnergie (all versions prior to 1.8.02.004) are vu ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics DIAEnergie
 CVE-2021-46742
 	RESERVED
 CVE-2021-46741
@@ -1472,7 +1472,7 @@ CVE-2022-1070
 CVE-2022-1069
 	RESERVED
 CVE-2022-1068 (Modbus Tools Modbus Slave (versions 7.4.2 and prior) is vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: Modbus Tools Modbus Slave
 CVE-2022-1067
 	RESERVED
 CVE-2022-27863
@@ -2226,7 +2226,7 @@ CVE-2022-27536
 CVE-2022-27535
 	RESERVED
 CVE-2022-27534 (Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security ...)
-	TODO: check
+	NOT-FOR-US: Kaspersky
 CVE-2022-27533
 	RESERVED
 CVE-2022-27532
@@ -2800,13 +2800,13 @@ CVE-2022-26519
 CVE-2022-26516
 	RESERVED
 CVE-2022-26419 (Omron CX-Position (versions 2.5.3 and prior) is vulnerable to multiple ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Position
 CVE-2022-26417 (Omron CX-Position (versions 2.5.3 and prior) is vulnerable to a use af ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Position
 CVE-2022-26022 (Omron CX-Position (versions 2.5.3 and prior) is vulnerable to an out-o ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Position
 CVE-2022-25959 (Omron CX-Position (versions 2.5.3 and prior) is vulnerable to memory c ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Position
 CVE-2022-1037
 	RESERVED
 CVE-2022-1036 (Able to create an account with long password leads to memory corruptio ...)
@@ -4742,7 +4742,7 @@ CVE-2022-26567
 CVE-2022-26566
 	RESERVED
 CVE-2022-26565 (A cross-site scripting (XSS) vulnerability in Totaljs commit 95f54a5 a ...)
-	TODO: check
+	NOT-FOR-US: Totaljs CMS
 CVE-2022-26564
 	RESERVED
 CVE-2022-26563
@@ -6617,7 +6617,7 @@ CVE-2022-24278
 CVE-2022-24068
 	RESERVED
 CVE-2022-24066 (The package simple-git before 3.5.0 are vulnerable to Command Injectio ...)
-	TODO: check
+	NOT-FOR-US: simple-git
 CVE-2022-24065
 	RESERVED
 CVE-2022-23923
@@ -8617,17 +8617,17 @@ CVE-2022-25162
 CVE-2022-25161
 	RESERVED
 CVE-2022-25160 (Cleartext Storage of Sensitive Information vulnerability in Mitsubishi ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2022-25159 (Authentication Bypass by Capture-replay vulnerability in Mitsubishi El ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2022-25158 (Cleartext Storage of Sensitive Information vulnerability in Mitsubishi ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2022-25157 (Use of Password Hash Instead of Password for Authentication vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2022-25156 (Use of Weak Hash vulnerability in Mitsubishi Electric MELSEC iQ-F seri ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2022-25155 (Use of Password Hash Instead of Password for Authentication vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2022-25154
 	RESERVED
 CVE-2022-25153



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebaf941753e69c6485e3344ce6f01a92d394ff1d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebaf941753e69c6485e3344ce6f01a92d394ff1d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220402/fae8a41c/attachment.htm>
